Am working on AzSK Secure DevOps with the help of Azure DevOps. In this, I configured AzSK ARM Template Checker task in my Azure DevOps organisation CI & CD definitions which is used for scanning and gave the security results of ARM Templates. But I have few doubts regarding these, there are:
- Here, am used SQL Database ARM Template for AzSK ARM Checker task for scanning and its giving output also. But, it is giving only few security controls results (6 in count) as output. When am searching, I came to known that there are few more security controls for this SQL Database in this link.
- Am done the same scanning with the AzSK SVT task which is done after deployed in the respective subscription, then it is giving more results (count) as output for the same resource than the AzSK ARM Template Checker output results (Count).
- Why it is giving output in differently for the same SQL Database security controls based on the AzSK ARM Template Checker and AzSK SVT tasks?
Note: Not only for this resource, the same thing happening for the other azure resources like Storage, virtual network etc....
Am very thankful, if anyone give me suggestions for these doubts?
